Scammers appear to have gained control of the X (Twitter) profile belonging to Blockchain Capital, a venture capital company focused on cryptocurrency, aiming to entice individuals with the opportunity to obtain tokens.
Multiple messages were posted from Blockchain Capital’s account on August 9, offering a giveaway of tokens named “BCAP.” These posts directed users to a counterfeit website designed to mimic the appearance of the actual Blockchain Capital firm’s site. Eventually, Blockchain Capital recovered control of their account and deleted the fraudulent posts.
Blockchain Capital phishing attack
Blockchain Capital X’s attacker’s website, intentionally designed with a URL resembling the genuine one by adding an extra “n,” instructed users to link their cryptocurrency wallet. Phishing scammers commonly employ this tactic to deceive users into authorizing a malevolent transaction leading to fund depletion.
The scammers also strategically disabled the option for comments on the posts, aiming to hinder any alerts or cautions from other users regarding the potential scam. However, numerous individuals on the X platform, such as Wayne Vaughan, shared the posts to caution against the fraudulent endeavor.
The Blockchain Capital attack comes days after the FBI cautioned about criminal entities seizing control of social media profiles belonging to prominent figures within the cryptocurrency sphere. This tactic redirects users towards fraudulent imitation websites with malicious intentions.
Jeremy Hogan, a prominent advocate for XRP, recently saw fraudulent posts on his compromised X account. These posts contained harmful links promoting a supposed XRP giveaway which went on for approximately four days.
In July, Changpeng “CZ” Zhao, the CEO of Binance, with a substantial following of 8.5 million users on X, alerted his audience about the growing cases of phishing attacks. The remarks followed the compromise of Uniswap founder Hayden Adams’ X account. Zhao then discouraged the utilization of text message-based two-factor authentication and advocated adopting hardware devices as a more secure alternative.
Meanwhile, in 2022, Kaspersky, a Russian cybersecurity and anti-virus firm, disclosed a substantial surge of 40 percent in crypto phishing attacks compared to the preceding year. Specifically, the company detected 5,040,520 crypto-phishing attacks, a significant rise from the 3,596,444 cases recorded in 2021.